Lucene search
MitreCVE-2006-3400HistoryJul 06, 2006 - 8:05 p.m.
CVE-2006-3400
2006-07-0620:05:00
mitre
web.nvd.nist.gov
23
cve-2006-3400
denial of service
remote code execution
quake 3 engine
sof2mp
security vulnerability
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8
Confidence
High
EPSS
0.045
Percentile
92.5%
Stack-based buffer overflow in the CG_ServerCommand function in Quake 3 Engine as used by Soldier of Fortune 2 (SOF2MP) GOLD 1.03 allows remote attackers to cause a denial of service and possibly execute code by sending a long command from the server.
Affected configurations
Node
id_softwarequake_3_engineMatch1.32b
ORid_softwarequake_3_engineMatch1.32c
ORid_softwarequake_3_engineMatchicculus_812
ORraven_softwaresoldier_of_fortune_2Match1.03
| Vendor | Product | Version | CPE |
|---|---|---|---|
| id_software | quake_3_engine | 1.32b | cpe:2.3:a:id_software:quake_3_engine:1.32b:*:*:*:*:*:*:* |
| id_software | quake_3_engine | 1.32c | cpe:2.3:a:id_software:quake_3_engine:1.32c:*:*:*:*:*:*:* |
| id_software | quake_3_engine | icculus_812 | cpe:2.3:a:id_software:quake_3_engine:icculus_812:*:*:*:*:*:*:* |
| raven_software | soldier_of_fortune_2 | 1.03 | cpe:2.3:a:raven_software:soldier_of_fortune_2:1.03:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2006-3400
2006-07-06 20:00:00
nvd
nvd
CVE-2006-3400
2006-07-06 20:05:00
exploitdb
exploitdb
Quake 3 Engine Client - 'CG_ServerCommand()' Remote Overflow
2006-07-02 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8
Confidence
High
EPSS
0.045
Percentile
92.5%
Related for CVE-2006-3400